Thursday, July 11, 2013

Duck Duck Go: Illusion of Privacy


There have been several articles in the press recently about users flocking to DuckDuckGo in the wake of the recent NSA snooping revelations.  If you are in this category this post is meant for you.

If you use DuckDuckGo solely for the myriad of other benefits, such as reducing advertiser tracking, filter boxing, etc. move along nothing to see here.  DuckDuckGo will provide you at least that level of “privacy”. 

Update: Wow, I didn't expect this blog post to spread so widely.  First of all, let me say to those accusing me of hating on DDG, I am a DDG user.  I think they have a great service.  This post is solely about the misconception that seems to have spread primarily from The Guardian article that DDG can somehow protect you from NSA monitoring.

DDG stated, "We literally do not store personally identifiable user data, so if the NSA were to get a hold of all our data, it would not be useful to them since it is all truly anonymous."  I would like to direct readers to this article which basically nullifies whatever protection DDG thinks it can provide, or you the reader think you have.


Standard Wiretaps

DuckDuckGo can easily be compelled either under the Communications Assistance for Law Enforcement Act (CALEA), standard court orders, or by secret orders from the Foreign Intelligence Surveillance Court (FISA) to provide tap-on-demand.  I don’t think anyone can dispute that.  If you are specifically targeted in an investigation, you can bank on the fact that all of your searches and their history “going forward” after the court order will be collected on you and stored.

Google has at least a transparency report detailing the number of non-FISA requests it receives and now a “ballpark” reporting of FISA requests.  Users should demand the same of DuckDuckGo.



Deep Integration

DuckDuckGo has made a lot of hay about their privacy, but like many other technology companies they have remained silent about their collaboration, if any, with law enforcement and security agencies.

Why shouldn't they?  They are reaping the benefits of an uninformed populace flocking to their service to avoid the NSA dragnet.  The privacy they offer is privacy from third-party advertisers and cross-site tracking.


The MarCom departments of big players like Google, Yahoo!, Microsoft and others are getting good at crafting extremely carefully worded denials through lies of omission.

DuckDuckGo says:
DuckDuckGo does not store any personal information, e.g. IP addresses or user agents
But what if DuckDuckGo provided a splitter-feed to the NSA?  DuckDuckGo can claim without lying that they store no personal information, but that speaks nothing of a collaborating partner storing it.

Can they refuse to collaborate with the NSA if approached?  If one looks at the recent reports about Yahoo! and others the answer is “No, you cannot”.   Yahoo! apparently made concerted efforts to resist, sending lawyers into battle, and ultimately (and silently) lost the fighting the FISA Court.  “Silently” because their loss and the ruling that handed it down is also secret.

Assume, nay bank on, the fact that corporations located within the United States can be and are being compelled to participate in programs like PRISM and are legally powerless to refuse.

The NSA Can’t Lose

Let’s be realistic, if services start popping up on the internet that shield substantial amounts of communications from the NSA that the NSA thinks is valuable, how long to you think the NSA will allow that to persist before making efforts to abate it?

What can they do?

According to the Washington Post a NSA initiative called “Upstream” siphons off of “communications fiber cables and infrastructure as data flows past” at all the major “choke points” of the internet.  So, we can assume that the NSA has access a substantial amount of ingress and egress packets to DuckDuckGo.

However, DuckDuckGo is using SSL encryption.  Without DuckDuckGo's private SSL certificate, your search queries (but not your location) are invisible.  What is a spy agency to do?

What is a SSL certificate key after all?  It’s simply a small block of data, often in the form of a file.   And it’s a file that must be installed on every webserver or load-balancer in a data-center.  If you possess DuckDuckGo’s cert, you can decrypt all traffic to DuckDuckGo.  The NSA could get the DuckDuckGo master cert in one of three ways:
  1. Be given the cert
  2.  Physical access to servers or load-balancers
  3. Remote access to servers or load-balancers
Let’s eliminate (1) for the sake of argument.

Option 2
Many smaller internet companies, including DuckDuckGo, do not operate their own data-center, but instead are “hosted” in another provider’s datacenter.  In DuckDuckGo’s case, they are hosted by Verizon Internet Services.  We’ve all learned about the cozy relationship between the NSA and Verizon, it is quite imaginable that Verizon would simply give them access to a DuckDuckGo server, or the load-balancer which is likely owned and operated by Verizon and upon which the SSL decryption key is installed.  They don’t need continuous access, 30 seconds is all that would be necessary to copy the cert.

Option 3
If Google’s servers can be compromised by a bunch of Chinese hackers, and if the computers controlling Iran’s uranium enrichment equipment can be compromised without even being connected to the internet, how long would a service like DuckDuckGo (or Verizon Internet Services) standup against a concerted effort by the NSA?  Verizon Internet Services is almost the better target given that penetrating their infrastructure gives you access to potentially all companies hosted by them.

Again, this is a “get in, and get out quick” type operation.  All they need is the key, they’ve already got the data.

In Summary

This is not an indictment of DuckDuckGo per se.  Except in as far as they are taking advantage of the hysteria to their own ends.  Every provider needs to be upfront with saying, “If it is indeed true that the NSA is monitoring our ingress/egress traffic, we can make no guarantee of privacy regardless of encryption or other efforts on our part.”

In the larger picture, this is the crux of the problem not just for DuckDuckGo, but the internet as a whole.  Until and unless agencies like the NSA are forbidden from conducting dragnet collection and analysis of data, there can be no privacy.  Privacy is merely an illusion at this point.



355 comments:

  1. Author, you seem not to understand how DuckDuckGo differs from its competitors such as Google or Bing.

    ReplyDelete
    Replies
    1. I understand their differentiators quite clearly. Dodging NSA monitoring is not one of them. That is all.

      Delete
    2. Just use DuckDuckGo with Tor... seriously people...

      Delete
    3. As if every other Tor server isn't the government.

      Delete
    4. wow wow wow... aside from brett and matt4542 you guys are as ignorant as you are blind... and maybe deaf too. they call y'all "sheepal";

      a) Tor is a about as private as a toilet thats. centre stage of madison square. with snowdens disclosure that the nsa targets encrypted connections, and the "anonymity" of the peered connections (whatever the onion network calls them) not only is matt4524 is exactly right, you're holding a god damned microphone between your legs while u number 2 on the Lou centre stage at the Madison².

      b) Brett not only hit the nail head dead centre, he drove it in on the first hit.

      thats 2 for 2. the sheepal haven't formed a concept of their own opinions, instead they assimilate those opinions expressed by social networks such as peers family and media.sheepel will defend any mainstream [mis]concepts as though they are their own ideas or the sources of info are credible and non partisan/non biased

      Delete
  2. Hi, this is Gabriel Weinberg, CEO and founder of DuckDuckGo. I do not believe we can be compelled to store or siphon off user data to the NSA or anyone else. All the existing US laws are about turning over existing business records and not about compelling you change your business practices. In our case such an order would further force us to lie to consumers, which would put us in trouble with the FTC and irreparably hurt our business.

    We have not received any request like this, and do not expect to. We have spoken with many lawyers particularly skilled and experienced in this part of US and international law. If we were to receive such a request we believe as do these others it would be highly unconstitutional on many independent grounds, and there is plenty of legal precedent there. With CALEA in particular, search engines are exempt.

    There are many additional legal and technical inaccuracies in this article and I will not address all of them in this comment. All our front-end servers are hosted on Amazon not Verizon, for example.

    ReplyDelete
    Replies
    1. First off, assuming it's legit, this is an important reply, and I hope it gets more attention up top. Second, I'm interested in the "additional and technical inaccuracies"-- Gabriel, is there a page on DDG's site that discusses for technical-minded people the security measures that are used to protect keys/certs, the obligations/relationships concerning the NSA, etc? Has DDG's methods and practices been discussed publicly and subject to the scrutiny of the Internet's security experts? Also, what are the advantages/disadvantages of DDG vs smartpage.com, which I think is Tor's default search engine...?

      Delete
    2. I think what duck duck is going in the right direction, but the cynics have a point, even if its muddy and inaccurate in the details. Fundamentally, right now duck duck in relation to users is a 3rd party privacy effort, not a protocol based effort that the user can see locally.

      Perhaps if duck duck baked in a webRTC data channel onion passing among ? So that after you first connect duck duck would connect to peers and client side encrypt your request so that only duck can decode but you never directly send your request to duck duck, and it always hops through a few peers. Likewise while your on the page you would potentially pass off encrypted packets to duck duck for a peer.

      I.e webRTC Tor. If duck duck did that and the source was open ( would basically have to be open since it will run client side ) I think that would go a long way. Sure you would still want a way to validate peers, but if the system was working, your search would be guaranteed through your own outgoing traffic inspection to be indistinguishable searches you had passed on for peers.

      Sure it would result in slower experience (like tor) but then you could more legitimately say look we don't know who this search came from, and we can't know tomorrow neither, and the EEF agrees... And I think you could leverage this system for other service offerings, like msg and email. Bring actual privacy to the growing demographic that does not appreciate the current status quo.

      In a world with secret laws and gag orders, the point is sadly you can only know what you see, so better to see privacy at the protocol level then hear a variation of ~trust us~ or "I don't think we could be compelled to do X, Y or Z" ... Or "its not constitutional" whatever that means now days...

      Its not enough to simply say "we don't block tor". If duck duck is competing in the space of "we don't track / others can't track you when you use us" ... we should see innovation and new ideas here, not just turning off the log files (something we as users can't actually see or check against in their outgoing traffic )

      Delete
    3. Gabriel worked with me to test the speed of his Tor in-proxy and I can attest that he isn't doing this for the money. If the NSA came in, I have no doubt that he would shut his service down or make it impossible to comply.

      Smartpage.com mixes queries to fool Google's servers. It is no more/less secure than DDG.

      DDG has a proxy between AWS and their back-end servers, publishes most of the source code for the site, and it has stronger-than-normal SSL. There might be some cutting edge stuff they are not aware of, but DDG has always been secure by default, even if it costs more (and it does).

      Researchers are still trying to work out ways of nullifying the NSA's techniques. They are experimental and DDG is pushing the envelope by incorporating as much as they have. Now that they have this big uptick, you can expect them to start being able to invest in fundamental research.

      Delete
    4. First of all, thank you Gabriel for replying directly.

      >I do not believe we can be compelled to store or siphon off user data
      >to the NSA or anyone else. All the existing US laws are about turning over
      >existing business records and not about compelling you change your
      >business practices.

      This is absolutely incorrect.

      If you believe this I strongly suggest reading:

      http://news.cnet.com/8301-13578_3-57593538-38/how-the-u.s-forces-net-firms-to-cooperate-on-surveillance/

      "Under federal law, the National Security Agency can serve real-time "electronic surveillance" orders on Internet companies for investigations related to terrorism or national security."

      Do you think that Google, Yahoo!, and Microsoft willingly collaborate with the NSA? They were confronted with the Hobbesian choice of 1) either altering their business practices and providing direct integration with the NSA (which they could somewhat control), or 2) allowing the FBI or NSA to install their own hardware into their networks under court order (over which they have no control).

      Quoting that article again, and Jennifer Granick, director of civil liberties at Stanford University's Center for Internet and Society:

      "They can install equipment on the system. And I think that's why companies are motivated to cooperate [and] use their own equipment to collect for the government. They would rather help than let any government equipment on their service, because then they lose oversight and control."

      And, "Nobody wants it on-premises," said a representative of a large Internet company who has negotiated surveillance requests with government officials. "Nobody wants a box in their network...[Companies often] find ways to give tools to minimize disclosures, to protect users, to keep the government off the premises, and to come to some reasonable compromise on the capabilities."

      Again, I appreciate your responding Gabriel, but saying "There are many additional legal and technical inaccuracies in this article and I will not address all of them in this comment. All our front-end servers are hosted on Amazon not Verizon, for example", and then only the one you do point out is where your front-end servers are located?

      It is in fact your assertion that court orders can only effect turning over existing records that is quite troubling (and inaccurate). If this came to you from your "many lawyers", I suggest you talk to the lawyers of Yahoo! et al.

      Technically, the only thing you can dispute is how difficult it would be for the NSA to get your private cert. They might already have it, you would never know. Anyway, eventually they are more likely to come knocking at your front door with a court order, rather than sneaking through a backdoor. But when they do, it will come with a gag order (ask Yahoo!) and you won't be able to say peep.

      Let me say that I *am* a DDG user. I appreciate your service for blocking tracking by third-party advertisers and peeling away the "filter box". But do not disrespect your users or me by any implication that using DDG protects them from government tracking.

      Delete
    5. DDG does operate a TOR exit node if you do want to use that: http://www.gabrielweinberg.com/blog/2010/08/duckduckgo-now-operates-a-tor-exit-enclave.html

      However, I think the author and some other commenters do have good points about DDG. Being operated within the US, it is compelled to laws that allow it to be searched from various points and cannot admit to doing so. But, I do think DDG would fight the order if they got one and attempt to make public that fact. Even with all he knows, and under the realization DDG has to be taken at its word, experts who were aware of the NSA surveillance all along, such as Bruce Schneier trust DDG.

      With that being said, Startpage.com/IXQuick are based in the Netherlands, so avoid this particular facet of US law (with the exception of their domain running on the US based .com TLD, which is operated by Verisign). That's not to say their results aren't monitored by whatever the Netherlands secret service(s) do and use, or even be scooped up by the NSA/GCHQ access to worldwide fiber backbones -- which, they would need to sort and is an incredibly time consuming and laborious process (having access to the "firehose" takes up vast amounts of space and requires quite a lot of time to go through).

      But, if you're super duper paranoid, you should always be running TOR or a non-domestic VPN service to protect yourself.

      Delete
    6. Why should the average consumers purchasing/browsing patterns be treated differently than other forms of intellectual property?

      Delete
    7. What is constitutional is what the Supreme Court says is constitutional. What isn't constitutional is what the Supremes say is unconstitutional.
      Someone/thing has to be the final arbiter of disputes and in the United State that someone/thing is the US Supreme Court.
      Ultimately the one having the final say is the POTUS. He (or g-d forbid!) she commands the guys with the guns. As long as the POTUS has control of the hearts and minds of the guys with the guns, the POTUS has all the power. Congress and the Supreme Court provide their respective collective opinions as to what the guys with the guns should and should not do.

      Delete
    8. What is constitutional is what the Supreme Court says is constitutional. What isn't constitutional is what the Supremes say is unconstitutional.
      Someone/thing has to be the final arbiter of disputes and in the United State that someone/thing is the US Supreme Court.
      Ultimately the one having the final say is the POTUS. He (or g-d forbid!) she commands the guys with the guns. As long as the POTUS has control of the hearts and minds of the guys with the guns, the POTUS has all the power. Congress and the Supreme Court provide their respective collective opinions as to what the guys with the guns should and should not do.

      Delete
    9. Jim Bob, yeah, I feel so much better with who got elected. He just reversed an Obama order that blocked ISP's from accumulating and selling your browser history. I'm not too keen on him having control of the hearts and minds of the guys with the guns either. http://www.bbc.com/news/technology-39365308?ocid=global_bbccom_email_24032017_technology

      Delete
    10. I hope that is irony that you are saying because no one should be happy about their browser history being sold.

      Delete
  3. The NSA Can’t Loose

    Seriously?! Loose=not tight, LOSE=opposite of win

    ReplyDelete
    Replies
    1. Why do you morons go to such lengths to distract from the actual point of the article?

      Oh cause you're a troll. Go get a job at the NSA bud, then you can get paid for distracting the masses. You arsecakebuttmuffin.

      Delete
    2. I get the point of the article, I just can't take someone very seriously when they can't fix a mistake that I see morons making on Facebook 50 times a day.

      Delete
    3. "I get the point of the article, I just can't take someone very seriously ..."
      should be "I get the point of the article, but I just can't take someone very seriously..." or "I get the point of the article. I just can't take someone very seriously..."

      I get the point of your comment, but I just can't take someone very seriously when I see someone making a mistake that I learned in 6th grade grammar. :-)

      Delete
    4. "I get the point of your comment, but I just can't take someone very seriously when I see someone making a mistake that I learned in 6th grade grammar."

      It is "learnt" and not "learned". :-)

      Delete
    5. @ BillyCravens - The way he said it, without the 'but', is perfectly acceptable. Maybe you should try learning grammar beyond the 6th grade level.

      Delete
    6. Sadly, nobody is taught this anymore.

      Delete
    7. Sadly, you are off topic and still Gene Cronk. Who else would go anonymous just to defend his poor grammar? Who gives a shit about grammar when you're typing on a keyboard you can barely see? Get a life.

      Delete
    8. Some of us care about our grammar.
      Also, some of us don't have social networking profiles, myself of choice. Perhaps the person you're referring to is not, in fact, Gene Cronk?

      Delete
    9. "Learnt" and "learned" are both acceptable. Learned is more common in the US, and learnt is used more in Britain and Australia.

      The quote above is a direct copy and paste from google search.

      Delete
    10. This comment has been removed by the author.

      Delete
  4. Does anyone know of any off-shore Search engines that use English Language? I would trust them a little more than any US based search engine.

    ReplyDelete
    Replies
    1. You can use Yandex.com, it is the best alternative I have found by far. Granted, it is Russian and probably monitored by the Russians the same way Google is. But at this point I trust the Russians more since I have zero business over there.

      Delete
    2. https://startpage.com/eng/

      Delete
    3. https://startpage.com/

      Delete
    4. http://en.wikipedia.org/wiki/Exalead but maybe spied by the French

      Delete
    5. There is Ixquick, which is based in Norway (i.e. outside the EU)

      Delete
    6. I know this is 5 years too late but you should try BRAVE browser.

      Looks and works exactly like Chrome but you don't need to sign in so there is no tracking of history on their servers. It also has ad blocking 3rd party cookie protection, script protection and fingerprint protection.

      Delete
  5. This article brings up good points but why they seem to be menacingly squared at DDG is a little confusing. The fact that NSA is Room 641A-ing everyone's traffic has little to do with DDG's efforts to maintain privacy for its users. The "Upstream" program has been happening for at least a decade, so if you're paying attention and haven't been living under a rock since 9/11 you would have known about it already. The real revelations of the Snowden leaks have been that there is private corporate complicity (and in some cases, like MS, going out of their way to brown nose), which I might add was a scenario people like myself were called "tin foil hatters" or simply "the paranoid" for believing until very recently.

    The Upstream program is real and we should absolutely be concerned about it, but it has nothing to do with DDG in particular, they have no power over that whatsoever. There is no need to make up "What if" scenarios about SSL certs and the like. You're speculating up a furry about DDG when there is documentary evidence that firms like MS, Amazon, Google, etc are actually engaged in the might-be scenarios that you're entertaining.

    Granted DDG is certainly taking advantage of the current state of affairs (and who isn't?) but crying fire because they don't have a giant banner on their home page that says "FEAR YOUR OVERLORDS FOR THERE ARE NO INTERNET SEARCHES THE NSA CANNOT SEE" is ridiculous.

    It also seems a little suspicious that there is only one blog post for this blog, it kind of seems like someone from a competing privacy service just made a blog because they're wah-wah about DDG getting all the traffic in these trying times.

    ReplyDelete
  6. >Every provider needs to be upfront with saying, “If it is indeed true that the NSA is monitoring our ingress/egress traffic, we can make no guarantee of privacy regardless of encryption or other efforts on our part.”

    Yet you call out tiny DDG (on your new blog, in your first post) after all the revelations about other internet companies who've been in bed with the NSA? Your motives and accuracy (Amazon) are questionable.

    ReplyDelete
    Replies
    1. I am the author. What exactly are my motives? I can tell you where I'm going from. What I saw this past week was a spat of news stories that looked more like marketing than news talking about users flocking to DDG because of NSA snooping. And the few quoted statements from DDG seemed to further this idea that users were safe from NSA snooping at DDG.

      However, I've seen no critical analysis at all from the media or even knowledgeable professionals on the internet who know better. This, I think, is a great disservice to the body of users who are not well read in the mechanisms of operations of the NSA as reported over the past few years frankly. It's like saying, "Here put on this bullet-proof vest" when in reality it is just an ordinary windbreaker.

      I *do* respect what DDG has done for privacy in the real of corporate tracking. I think it great. But please do not kid yourselves when it comes to DDG providing any kinds of security whatsoever from the likes of the NSA.

      Delete
  7. DDG over Tor is safe from NSA, assuming they don't control most of the Tor network - a reasonable assumption. It does not matter if NSA can listen to what you search. What matters is there is no tracking cookie linking all those searches, and there is no gmail account that can be raided in connection to them. Random query strings from random IP, there is nothing NSA can use unless you search for "Osama Bin Laden is housed in Bilal, Abbottabad no 34".

    ReplyDelete
    Replies
    1. [there is nothing NSA can use unless you search for "Osama Bin Laden is housed in Bilal, Abbottabad no 34".]
      Oops, there y'go, you're tapped now.

      OMG, so am I!!!

      Delete
  8. First of all, please. This is a ridiculous and paranoid post. See the CEOs response above. Secondly, when it comes to subpeonas, if you dont store user data, theres nothing to access. And if you want to monitor an IP address for its own sake, what does DDG have to do with that? The NSA already HAS that data. OK one sec while I make a cheese sandwich.

    Man i love cheese (swiss if your curious). Look dude, an upstream data collector can capture whatever it wants. If they come asking for data of DDG and they DONT HAVE IT, then they have to go screw and get it from upstream.

    As for the "oh i use tor" idiots, you are completely out of touch. The US Govt has done many a sting on TOR users, and your little onion is just not as bulletproof as you wish it was.

    Dont attack DDG for just not being douchebags like Google. Thats a valiant thing to do. Dont be a DOUCHE!

    The truth is the NSA cant get whatever they want from whomever they want by whatever means they want.

    Dont single out a do gooder for scorn just because your paranoid psyzophrenic little brain cant discern between being a victim of govt spying and collaborating with govt spies.

    Gonna make another cheese sandwich now. Have a good night.

    ReplyDelete
  9. a simple network look up on the duckduckgo domain would have been sufficient to throw option 2 out the window :)

    ReplyDelete
  10. Tor does NOT protect from NSA or any attacker who can listen to all traffic globally. It is because two things: timing attacks and the fact that Tor is low-latency. If they can correlate the time and size of your data transfer to and from the Tor network, which they can without a problem, they can track you all the time.

    ReplyDelete
    Replies
    1. You need to get your facts straight. Tor is padding and multiplexing messages. Timing attacks are not easily done.

      Delete
  11. The unique way of assure the privacy is not to store any information of users (IP, ...). How can we trust in non-open-sourced company like DDG if we can't see what they do with our information. It's a act of faith, no different on thinking google is not "evil". The unique way is that DDG will be full open source search engine.

    ReplyDelete
    Replies
    1. "Open source" has nothing to do with "evil" or other stuff discussed here.

      Moron.

      Delete
  12. Wow, a new blog, with a single post, spreading FUD (with a Google-operated blog service, too)

    ReplyDelete
    Replies
    1. I'm not trying to spread FUD. I'm was just trying to set the record straight in the face of massive coverage this week of users flocking to DDG out of fears of NSA spying, when in fact there is zero that DDG can do with respect to NSA spying.

      Not one article pointed out that DDG's forte is preventing tracking by advertisers, not preventing tracking by the NSA. This is a huge disservice to the large number of non-technical users who falsely believe the hype.

      I like DDG. I use DDG. However, even when interviewed in some of these articles, at no point did DDG take the opportunity so say that they really couldn't help out in this regard.

      Delete
    2. The whole controversy is a disservice to people who think the NSA gives a damn about YOU.

      It's clear from the revelations that the government is doing successive rounds of keyword searching, so switching to DDG because you're worried about the NSA learning your secret family barbecue sauce recipe, your bout of genital herpes, or your shameful interest in interracial lesbian mud wrestling porn, is inherently absurd. It's magical thinking, pure and simple.

      That's not to say that there isn't a need for privacy, but most of whom we want privacy from is another individual we know. Even the comments here propagate that interpretation; re-read the commenters suggesting overseas search engines in that light. In that sense, all of our major search engines are still protecting us with that sort of privacy.

      The advertisers don't care two figs about you either. They pick from their pool of paid ads the most likely to interest you based on obscenely primitive data analysis algorithms fed precious little information. Any one of us who has seen the ads selected by Facebook know what a joke they are. Any one of us who uses a hosting service knows how many ads we get for the hosting service we already use. Visit a gay blog site or two and expect months of underwear advertising. Once again, it's magical thinking. The advertisers neither know nor care about you.

      The real solution to the privacy scare is education about how technology works, something apparently lacking even within our own community.

      Delete
    3. You're wrong about your essential point. It's naive to think that the information cannot be used again YOU. That's the assumption people make that will land everyone in trouble. You don't know how or when the information will be used - it's all done in secret, and that's the scary thing.

      Governments come and go, with their various agendas - good or bad. The information collected will be there for whatever use a corrupt government can dream up.

      Delete
  13. Ok this whole article reads to me like: hey the opponents / enemy (here read: feds, three letter agencies) can and will try anyways to get our data, our lives, our freedoms, so why fight it in the first place, and duckduckgo wont win either against the allmighty rulers king and devils.

    the author of this article should reconsider life as it inevitably leads to death. so why live in the first place?

    also: why not hand all your freedoms over and give up instead of fighting for your freedoms, your lives and rights.

    these kind of articles only show to me that humans are a pointless pathetic life form and not worth bothering with.

    ReplyDelete
  14. Why isn't DDG (or others) simply moving away from being a US corp? NSA doesn't have any jurisdiction over a non-US entity afaik. Don't host anything in the US and you're done? Or am I missing something?

    ReplyDelete
    Replies
    1. You're missing data exchange agreements between almost every country in the world.

      You're missing domain registration for any of the major domains is exclusively controlled by the US.

      Delete
    2. You're missing the fact that, outside of the US, not that many people care about .com/.net/.org.

      Delete
    3. You're missing the fact that he who owns the DNS owns the network and can do as they please.

      Delete
    4. "data exchange agreements..." - Essentially only by those who feel eternally subservient to the US such as the UK.
      "outside of the US, not that many people care about .com/.net/.org" - Actually, even outside the US, most pro sites are .com first of all.
      ICANN's days are numbered too. Thanks to their very US-centric principles & US fingers in everyone else's pies.

      Delete
  15. As an aside, if a non-US corporation, hosted on non-US servers provided the same services as DDG would they be out of the reach of server side tapping by the NSA?

    I am assuming of course that the NSA can't compel non-US corps outside of the US to do anything at all?

    Clearly this doesn't help with any intercept of the data in transit but maybe tackles one side of the problem.

    ReplyDelete
    Replies
    1. TLS takes care about the "intercept of the data in transit".

      Delete
  16. If the author is someone trying to spread FUD doesn't matter much. His arguments are valid: Does DDG have any means of assuring us protection against secret court orders/interceptions/surveillance from NSA? Don't forget, kids, they have secret courts (but we know they don't need the law to act; hey operate under secrecy, so who cares?). The Big Brother is watching you. =)

    ReplyDelete
  17. Interesting that a lot of "Anonymous" posters are piping in with their one liners and hand waving without addressing anything that the OP highlights as a concern with evidence. Yeah, let's make this a DuckDuckGo vs Google discussion...

    Anyone who doesn't think the NSA (or whomever) is monitoring/collecting/storing/whatever *all* traffic on *all* US (and possibly most of the world through its allies) Internet access points *regardless* of the business policies of companies running traffic through said Internet access points is either being extremely naive, or ignoring reality. Oh, and then add FISA, secret agencies and court orders, secret laws, gag orders, etc, and you might as well submit....

    Is this all new? No. It's been going on for years. The media has now decided that Snowden is good press so it's running with it. Consider Room 641A was news in 2006. It's good that we are having these open discussions though, because now everyone can realize how screwed everyone's privacy has been all this time...

    ReplyDelete
    Replies
    1. The original "firehose"
      http://www.nytimes.com/2013/07/06/opinion/lincolns-surveillance-state.html?_r=0

      Delete
    2. "NSA (or whomever) is monitoring/collecting/storing/whatever *all* traffic on *all* US (and possibly most of the world through its allies) Internet access points"

      This alone is of little use if everyone encrypts *everything*.

      Delete
  18. Does anyone else find it odd that the alleged ceos response comes from a blogger account that was just created and has no info tied to it? You'd think he would have a more legit account/profile that he would use for communicating to people about his product.

    ReplyDelete
  19. Could one way around invasive eavesdropping be to have these services hosted in countries unsympathetic to US law? It's true that China for example, could then spy on users, but then when has China been interested in what everyone in the world is up to. They have enough work spying on their own citizens. They could make a nice buck from it too.

    ReplyDelete
  20. You seem to operate under the assumption that the private key of DuckDuckGo's certificate is sufficient to decrypt all traffic.

    That assumption is incorrect. Actually, DuckDuckGo's Private Key is only used for *authentication*, not key exchange.

    Why? Because DuckDuckGo uses ECDHE for Key Exchange (if your browser supports it - recent browsers do). ECDHE (any DHE variant, actually) ensures perfect forward secrecy.

    Therefore, decrypting DuckDuckGo's traffic is *not* an "hit-and-run". Not by a long shot.

    To decrypt DuckDuckGo's traffic, you would need to infect the hosts that do SSL termination, and monitor the decryption process (or their outbound traffic). Not impossible, but not a "hit-and-run" either.

    ReplyDelete
    Replies
    1. You could also MIM the connection, but that would require an active attack that probably (maybe) is not worth it.

      Delete
    2. The private SSL key basically an interesting academic exercise, as I said in a comment above: "Anyway, eventually they are more likely to come knocking at your front door with a court order, rather than sneaking through a backdoor. But when they do, it will come with a gag order (ask Yahoo!) and you won't be able to say peep."

      Delete
    3. "The private SSL key basically an interesting academic exercise"

      IOW, you have zero idea what you are talking about.

      "Anyway, eventually they are more likely to come knocking at your front door with a court order"

      based on what?

      Delete
  21. If we have nothing to hide, why should we care if the NSA is watching us in the first place? They are after terrorists, criminals, etc.

    As NSA said:

    "If You Have Nothing to Hide, You Have Nothing to Fear"

    ReplyDelete
    Replies
    1. "If You Have Nothing to Hide, You Have Nothing to Fear"

      This statement always gets replayed in my mind with a German accent for some reason.

      Delete
    2. Nobody expects the Spanish inquisition...

      Delete
    3. If you have nothing to hide why are you "Anonymous" ?
      Or is your real name "Troll" ?

      Delete
    4. read this, please https://www.schneier.com/blog/archives/2007/07/privacy_and_the.html

      Delete
    5. "If we have nothing to hide, why should we care if the NSA is watching us in the first place? They are after terrorists, criminals, etc."

      I presume the naiveté of that remark is tongue-in-cheek. It is nonetheless worth pointing out that chasing terrorists, criminals, etc. is not as profitable an activity as is monetizing the intimate details of entire populations to the Big advertising/health/insurance/finance/etc. industries, to our collective frustration, inconvenience and, of course, cost. The "NSA" is the morally upstanding nice guy in the operation.

      Delete
  22. @OP

    You might expect that in perfect world, but ours is not one.
    http://townhall.com/columnists/bobbarr/2013/06/12/even-if-you-have-nothing-to-hide-you-have-something-to-fear-n1618353/page/full

    ReplyDelete
  23. fat-tire:

    I'm interested in the "additional and technical inaccuracies"

    Here's one:

    What is a SSL certificate key after all? It’s simply a small block of data, often in the form of a file. And it’s a file that must be installed on every webserver or load-balancer in a data-center. If you possess DuckDuckGo’s cert, you can decrypt all traffic to DuckDuckGo.

    Firstly DDG's cert is freely available. It's DDG's private key, not its cert, which is needed to decrypt traffic to DDG.

    Secondly, while the private key is necessary to decrypt traffic to DDG, it isn't sufficient. DDG uses ECDHE as its key exchange mechanism, which means a passive eavesdrupper, even one in possession of the private key (or who later comes into possession of it) will not be able to decrypt the communication. To do that would require an active man-in-the-middle attack, which could only be conducted at the time of the communication.

    I've no doubt that the NSA could do this to anyone it wants*. However I doubt it is doing it en mass. MitM attacks are quite easy to detect with a little technical knowhow, and you can bet your bottom dollar that there are people out there looking for signs of mass MitM. It it was happening, we'd know about it.

    *It wouldn't even need to obtain DDG's private key for this. All it needs to do is compromise one Cert Authority, out of dozens, then it can create its own certs for any site it likes.

    ReplyDelete
    Replies
    1. Thomas Orozco got there before me.

      Delete
  24. From https://duckduckgo.com/privacy#s4:

    "Similarly, we may add an affiliate code to some eCommerce sites (e.g. Amazon & eBay) that results in small commissions being paid back to DuckDuckGo when you make purchases at those sites."

    ReplyDelete
  25. Who's web surfing without the cover of a VPN? Most state flat out "no logs kept". Some have DNS leak protection and kill switches.

    ReplyDelete
    Replies
    1. Sure, your VPN can state whatever they may, but whether it's true or not is a completely different story. Any server that you're connected to regardless if it's a VPN, proxy, etc. will have been logged somewhere at some point. Just because you're using a VPN does not guarantee privacy. The majority of VPN companies are not well established or even reputable for that matter. To trust some providers marketing fluff only states you would be kidding yourself.

      Delete
  26. The OP may have valid points, i don't know. If the CEO of DDG can elaborate on "There are many additional legal and technical inaccuracies in this article and I will not address all of them in this comment" it would help a lot. Clear up any misconceptions resulting in all the facts from the OP and DDG CEO combined.

    I do believe DDG can keep your identity/location/search queries hidden from companies and individuals (though being hosted on Amazon servers, a company thats almost as bad as Google when it comes to collecting and selling user data, puts a small dink in DDG's credibility) but with governments (not just the US), agencies (not just NSA) and pretty much limitless funds... i think *they* have global monitoring down pretty tight. Many governments exchange data as it's a 'team sport' so what the NSA can't get, they can obtain from an agency or government somewhere else. Also if you do not own, operate and control your own servers i don't think you can make claims like DDG currently does with 100% certainty.

    DDG CEO please clear up whatever inaccuracies you found.

    ReplyDelete
  27. Who are some of the people that take the most precautions to try and stay invisible online; hackers (technically Crackers). Good ones bounce their signal all around the world, route it through many networks, VPN's etc etc and guess what... most still get caught. If there was a fool proof, perfect way to stay invisible online we'd all know about it and once it becomes mainstream enough the NSA or some agency/government would jump on that too putting us right back to square one. I appreciate services like DDG, start page.com, VPN's etc. as they allow me to get some of my privacy back. Do i think i am browsing the web invisibly without being logged or tracked by something or someone? no way.

    ReplyDelete
  28. @ DuckDuckGo: The National Society of Assholes (NSA) doesn't need to request anything from you. If your site is indeed hosted on Verizon servers, then the NSA can go direct to them, and as everyone knows, Verizon are only too willing to bend over for any government agency which tells them to.

    ReplyDelete
  29. That bit of info was already corrected (though i don't know if that was actually the CEO of DDG), apparently Amazon servers are used.

    ReplyDelete
  30. If ddg is anonymous why do I get ads for things I have searched for? Is there a setting to change this?

    ReplyDelete
  31. If duck duck go is what it says it is, then I think its great. NSA will get the data anyway, but why hand it to them? Lets run their budget up a bit by having everyone become harder to track.

    I am in Canada so I could care less how much money they waste, hopefully our government gives us more privacy. I would sure love to see the Canadian government request that PRISM and other programs not target Canadians though.

    ReplyDelete
  32. There is https://www.qwant.com it is french under european laws with no advertising and under the obligation of the french and german cnil who guarantee more privacy.

    ReplyDelete
  33. As of today, Duck Duck GO has reached 4 millions direct hits per day. Lets suppose the use of DDG makes it a small 1% more difficult to decrypt the data, just because it uses HTTPS everywhere, and that decyphering SSL flows slows the operation. That's means 40,000 less individual searches might be spied everyday. Of that the NSA annual budget should be raised by 1%, that is to say an estimated $100 millions increase.

    ReplyDelete
  34. "...There are many additional legal and technical inaccuracies in this article and I will not address all of them in this comment. All our front-end servers are hosted on Amazon not Verizon, for example..." It doesn't mean nothing because if Verizon have to comply Amazon will comply to in case of been asked by US government.

    ReplyDelete
  35. The simple fact is that if a government agency like the CIA or the NSA want your info or data, they will get it. One way or another. It's what they are set up to do and are very good at it.

    ReplyDelete
  36. The tapping is at your ISP/telecom level.

    Keywords are already labeled and stored.

    The rest of your worries about search providers is kinda pointless.

    I can be corrected... yet it seems a bit evident.

    ReplyDelete
    Replies
    1. "The tapping is at your ISP/telecom level."

      Lame. Don't you know what HTTPS is? What encryption is for?

      Delete
  37. The hell are you people on?...OK I get the concern about not knowing what kind of means of protection Duck Duck Go implements over time Yet Why the heck would you shout out loud and be as, I quote "In The middle of Madison Square Garden with the toilet" as I seen up there in a comment(well noted) and just Ask the "security" or "Guard" how it will catch "the thief". Is like trying to punch someone who tries to steal you somehow in the nuts but warning him or giving him a briefing on the fact you are about to punch him(when and what technique you will be using). For f**k sake get your fedoras off and your trolly heads out of your behinds, Jeez.... If D.D.G. will fail legitimate details will surface or palpable proofs.

    ReplyDelete
  38. Snooping on the citizenry without legal authority just means that the information obtained cannot legally be used against a criminal defendant.
    Since when has NSA been interested in criminally prosecuting anyone? They are interested in 1) protecting their turf and building their organization, and 2) protecting "national security."

    ReplyDelete
  39. This comment has been removed by the author.

    ReplyDelete
  40. DDG can only encrypt your search result not web pages so vpn is must with tor.

    ReplyDelete
  41. Google: We track you.
    Duck Duck Go: We don't track you.
    NSA: Whatever, we can track you down anyway.

    ReplyDelete
  42. I don't see how Option 2 is possible if DDG does the basic defense on operating system. Even though you have access to the physical server, you may not have access to the hypervisor. Even if you do have access to hypervisor, you still don't have the access to the specific VM which actually runs the DDG search service. Option 3 might be better.

    ReplyDelete
  43. Enough have been paid to writer by google..

    ReplyDelete
  44. NSA is everywhere, there are evidences that they can compromise anything for their so called purpose "National Security". Even tor is compromised.

    ReplyDelete
    Replies
    1. We'll of course they are and of course they can. Nothing is truly uncrackable in the digital realm.

      The thing is there is no reason for the NSA to concern itself with my emails or my photos. So it doesn't bother me.

      I'm sure not only do they have bigger fish to fry, they have actual "fish" to fry.

      Delete
  45. Mcafee.com/activate Online Help – Step by Step guide for McAfee Activate, Download &

    complete installation online. We are providing independent support service if in case you face problem

    to activate or Activate McAfee product. Just fill the form below and will get in touch with you as quick

    as possible.
    mcafee.com/activate

    ReplyDelete
  46. Norton.com/setup - Visit the link in order to Get Started with Your Norton Setup. You may

    easily Setup Norton with the help of this link or call us for Norton.com/setup or

    www.Norton.com/Setup.
    Norton.com/setup

    ReplyDelete
  47. I was never under the illusion that DDG was immune to Gov spying, but howbeit, is any server connected to the internet? Regardless of (and perhaps proportionate to) how strong and well implemented the encryption protocol is, keys can be forcibly obtained, nodes commandeered, and hosts usurped all without a peep from the service provider. In fact I wouldn't be surprised if "freedom-friendly" server locations like Iceland cooperated under the table with the NSA in exchange for intel from the Five Eyes. The point is its algorithms aren't biased for profit and it doesn't monetize our data into all-encompassing consumer profiles. Don't let the perfect be the enemy of the good. I am curious if DuckDuckGo does warrant canaries though.

    ReplyDelete
  48. AOL Email Support is one of the best email service providers that helps in AOL email related issues. There are several email providers like gmail, Hotmail, rediff and so on but AOL is the only company that provides the best service all over the world.
    aol mail support


    ReplyDelete
  49. quick book is an accounting software for small and medium sized businesses where we can manage business payments, pay bills and pay rolls.
    quickbook support

    ReplyDelete
  50. McAfee have the complete set of features which can protect your digital online offline computing devices that increase the speed with inbuilt PC Optimisation tool.
    mcafee retail card

    ReplyDelete
  51. Norton is the One of the best antivirus company all over world. It is an anti malware software developed and distributed by Symantec corporation.Norton setup uses heuristics and signatures to detect viruses in your computer. It features also include phishing protection and email spam filtering .Norton setup product is distributed as box copy, a download and as an OEM software.
    nortonsetup

    ReplyDelete
  52. Daman Escort Service is Best Escort Service in Daman We Have Best Models in Daman You Can Contact us Anytime 24x7 to Book Models
    Daman Escort Service
    Daman Call girls Service
    Daman Escorts
    Daman Escort
    Call Girls in Daman
    Daman call girls
    Daman Escort Service is Best Escort Service in Daman We Have Best Models in Daman You Can Contact us Anytime 24x7 to Book Models
    Daman Escort Service
    Daman Call girls Service
    Daman Escorts
    Daman Escort
    Call Girls in Daman
    Daman call girls
    Daman Escort Service is Best Escort Service in Daman We Have Best Models in Daman You Can Contact us Anytime 24x7 to Book Models
    Daman Escort Service
    Daman Call girls Service
    Daman Escorts
    Daman Escort
    Call Girls in Daman
    Daman call girls
    Daman Escort Service is Best Escort Service in Daman We Have Best Models in Daman You Can Contact us Anytime 24x7 to Book Models
    Daman Escort Service
    Daman Call girls Service
    Daman Escorts
    Daman Escort
    Call Girls in Daman
    Daman call girls

    ReplyDelete
  53. This comment has been removed by the author.

    ReplyDelete
  54. This comment has been removed by the author.

    ReplyDelete
  55. Sanjay Precision Industries are the most sorted and experienced VMC Machined parts manufacturers who bring in use the finest materials like mild steel, stainless steel grades, cast iron, investment casting and brass & aluminum. If you want VMC and CNC machinery parts then contact us:9810177414

    VMC Machined Parts manufacturer

    VMC Machined Parts Manufacturer and Suppliers

    VMC machines Components Manufacturers

    VMC Turning Component Manufacturers

    ReplyDelete
  56. Chennai is absolutely the most attracting area around the world and people of this city are very lovable.
    Mumbai Escorts
    Goa Escorts

    ReplyDelete
  57. The Baroda Escorts scene attracts people to the city from all over the world, and our agency helps to make sure that you get to experience the very best that is on offer.

    Baroda Escorts

    ReplyDelete
  58. Good discussion. Thanks to all. NSA looks to be as GOD - omnipresence.

    ReplyDelete
  59. Hi
    It is an exceptionally pleasant article and I am perused your blog. I am exceptionally glad to peruse your blog in light of the fact that your data really great I like it and cherish it. much obliged to you such a great amount of offer with us this valuable data and I have a similar kind of .in the event that you require any assistance this Change your world with Facebook live article is helpful to you.thank you to such an extent.

    ReplyDelete
  60. Hello, dear
    I am Enjoy full perused your blog, I've revered review the change and all the tenacious work you've put into your dazzling home. My most cherished was seeing the finished outcomes of the stencil divider and the parking space. I look for you have a wonderful rest after whatever is left of 2018, and a happy 2019, friend. More Details…..(McAfee.com/Activate)

    ReplyDelete
  61. yes, exactly..
    but i don't know " Duck Duck Go " which country is using this search engine.
    i have a website (https://nucleusconsultinggroup.com/prince2-certification-training-in-hyderabad/). i want to submit my website in duck duck go search engine. please help me.

    Thank You...

    ReplyDelete
  62. Check out here complete steps for downloading, installing, uninstalling, and activating the all kind of antivirus support.
    mcafee.com/activate
    office.com/setup
    norton.com/setup
    mcafee.com/activate

    ReplyDelete
  63. Thank you for sharing knowledgeable post!

    To take pleasure of :-
    Delhi Escorts

    Call Girl service in Delhi

    ReplyDelete
  64. Ghaziabad Call Girl

    http://www.ghaziabadcallgirl.in/

    I am Anshika. Are you keen on visiting with the receptive girl. I am constantly accessible here for you since I am a benevolent girl; my side interest is that I appreciate the agency of each man. I am from Ghaziabad me and my companions can likewise be in contact with you through my Gmail I am a High profile Independent Escort in Ghaziabad and my flawlessness in all sort of each need.

    Ghaziabad Call Girl, Independent Escort in Ghaziabad, Escorts in Ghaziabad, Female Escorts Ghaziabad, Russian Call Girls in Ghaziabad.

    ReplyDelete
  65. mcafee activate - Mcafee Antivirus is a software developed by Mcafee company. This is the prime software which is required by professionals and non professionals to to protect computer from virus, malware, threats, internet hackers, adwares.It warns you about risky websites and helps prevent dangerous downloads and phishing attacks.We provide support related to any mcafee product questions, Subscription, Registration and Activation, Error messages and any other technical glitches. For any support or help regarding mcafee products installed on your system dial into Mcafee antivirus customer support phone number or visit mcafee.com/activate

    mcafee.com/activate
    mcafee activate
    mcafee retailcard

    ReplyDelete
  66. Norton.com/setup-For Norton setup,Go to www.norton.com setupand sign in or login to your account, setup, download, reinstall and manage Norton features..Sign In to www.norton.com/setupIf you are not signed in to Norton setup already,you will be prompted to sign in. Type in your email address and password for Norton, and click Sign In..If you do not have an account, click Create account, and then complete the sign-up process.. In the Get Started page, click Download ..... If you have a product key you have not yet registered to your account, click Enter ....
    norton setup
    norton.com/setup
    Norton my account

    ReplyDelete
  67. I intend Norton.com/nu16 to guard your device against malicious package programs. laptop dangers and malware strike unit one regular for the massive get-together using laptop, PCs or Mobile telephones.

    Norton.com/nu16
    Norton.com/setup
    Norton setup
    www.norton.com/nu16
    Norton my account

    ReplyDelete
  68. Thanks for this great post, i find it very interesting and very well thought out and put together. I look forward to reading your work in the future. corso base privacy

    ReplyDelete
  69. That's a Good Information thanks for sharing with us I Really appreciate your work and content quality and your writing skills and your idea's and your blog give me a lots of information perfect blog for me
    A piece of art jewelry is an article of adornments that is worn around the wrist. Wristbands may serve diverse utilization, for example, being worn as an adornment. At the point when worn as trimmings, wristbands may have a steady capacity to hold different things of design, for example, charms. Medicinal and character data are set apart on a few wristbands, for example, sensitivity wrist trinkets, healing center patient-distinguishing proof labels, and wrist trinket labels for infants.
    Earrings - Diamond Earrings

    ReplyDelete
  70. Norton.com/setup Company is in charge of keeping up and ensuring client data under its control.Identifying Purposes: Norton setup reasons for which client data is gathered should be distinguished previously or at the time the data is gathered.
    http://nortonnortoncom.com

    ReplyDelete
  71. This comment has been removed by the author.

    ReplyDelete
  72. Office.com/setup character and any mix of these etchings are the trademarks what's more picked trademarks of Office setup exhibit Holdings Pvt Ltd or conceivably its accomplices and individuals.
    http://office-comoffice.com/

    ReplyDelete
  73. Office.com/Setup - Step-by-step process for downloading, installation and activation office setup ! To get an instant help for any error, Visit our website office-setup-install.com

    ReplyDelete
  74. we are providing best for hi profile escort service in haldwani stunning call girls for fun and call successfully.

    ReplyDelete
  75. Great information you shared through this blog. Keep it up and best of luck for your future blogs and posts.


    office.com/myaccount

    ReplyDelete
  76. Sanjay Precision Industries firm is dependably splashed in the gathering of Agriculture Machinery Bush to help a couple of necessities in the mechanical business adventures and workshops. These are arranged meticulously by our dexterous masters using quality rough material and latest device. Easy to use our fences are shielded to use in all condition and have an incredibly solid thick edge.

    Machine Bush Menufactures
    Turned Bushes Manufacturers
    Brass Pin Manufacturers

    ReplyDelete
  77. Alisharoy Bangalore escorts offering high profile call girls in Bangalore at affordable price. We are most genuine escorts in Bangalore and giving 100% satisfaction.
    Bangalore escorts

    ReplyDelete
  78. We provide the best online support for hp support. If you have any issues related to help support number then you can contact us and visit our website.hp support number
    hp Technical Support
    hp customer service
    hp customer service number

    ReplyDelete
  79. Our support team listen to your problem carefully and get an instant solution. If you have any issues related to the laptop then you can contact Antivirus Tech Support number and visit our website.

    Panda antivirus support
    Kaspersky antivirus support
    webroot antivirus support
    bidefender antivirus support
    Mcafree antivirus support
    AVG antivirus support
    Norton antivirus support
    Avast antivirus support

    ReplyDelete
  80. These type of articles keeps the user's interest within the web site. I found this one pretty fascinating and it should go in my collection. i'm impressed. Please keep aiming to write a lot of content...
    norton.com/setup

    norton.com/setup

    ReplyDelete
  81. Cảm ơn vi một bài viết xuất sắc. Mình cũng muốn giới thiệu về một thương hiệu dịch thuật uy tín: Công ty CP dịch thuật miền trung - MIDtrans địa chỉ 02 Hoàng Diệu, TP Đồng Hới, tỉnh Quảng Bìnhcó Giấy phép kinh doanh số 3101023866 cấp ngày 9/12/2016 là đơn vị chuyên cung cấp dịch vụ dịch thuật, phiên dịch dành các cá nhân. Hệ thống thương hiệu và các Công ty dịch thuật con trực thuộc: dịch thuật tp hcm địa chỉ 47 Điện Biên Phủ, Phường Đakao, Quận 1 TP HCM, dịch thuật quy nhơn, bình định : địa chỉ 100 , Lê Lợi, quy nhơn, bình định là nhà cung ứng dịch vụ dịch thuật uy tín hàng đầu tại bình định translation service in Vietnam : dịch vụ dịch thuật cho người nước ngoài có nhu cầu, giao diện tiếng Anh dễ sử dụng; dịch thuật công chứng quận 5 (năm) : nhà cung ứng dịch vụ dịch vụ dịch thuật phiên dịch hàng đầu tại Quận 4, TP HCM; dịch thuật Đà Nẵng : Địa chỉ 54 Đinh Tiên Hoàng, Quận Hải Châu, TP Đà Nẵng chuyên cung cấp dịch vụ dịch thuật công chứng, dịch thuật chuyên ngành tại Đà Nẵng. Chúng tôi chuyên cung cấp các dịch vụ biên dịch và phiên dịch, dịch thuật công chứng chất lượng cao hơn 50 ngôn ngữ khác nhau như tiếng Anh, Nhật, Hàn, Trung, Pháp, Đức, Nga, Tây Ban Nha, Bồ Đào Nha, Ý, Ba Lan, Phần Lan, Thái Lan, Hà Lan, Rumani, Lào, Campuchia, Philippin, Indonesia, La Tinh, Thụy Điển, Malaysia, Thổ Nhĩ Kỳ..vv... Dịch thuật MIDtrans tự hào với đội ngũ lãnh đạo với niềm đam mê, khát khao vươn tầm cao trong lĩnh vực dịch thuật, đội ngũ nhân sự cống hiến và luôn sẵn sàng cháy hết mình. Chúng tôi phục vụ từ sự tậm tâm và cố gắng từ trái tim những người dịch giả.Tự hào là công ty cung cấp dịch thuật chuyên ngành hàng đầu với các đối tác lớn tại Việt nam trong các chuyên ngành hẹp như: y dược (bao gồm bệnh lý), xây dựng (kiến trúc), hóa chất, thủy nhiệt điện, ngân hàng, tài chính, kế toán. Các dự án đã triển khai của Công ty dịch thuật chuyên nghiệp MIDtrans đều được Khách hàng đánh giá cao và đạt được sự tín nhiệm về chất lượng biên phiên dịch đặc biệt đối với dịch hồ sơ thầu , dịch thuật tài liệu tài chính ngân hàng, dịch thuật tài liệu y khoa đa ngữ chuyên sâu. Đó là kết quả của một hệ thống quản lý chất lượng dịch thuật chuyên nghiệp, những tâm huyết và kinh nghiệm biên phiên dịch nhiều năm của đội ngũ dịch giả của chúng tôi. Hotline: 0947688883. email: info@dichthuatmientrung.com.vn . Các bạn ghé thăm site ủng hộ nhé. Cám ơn nhiều

    ReplyDelete
  82. Cảm ơn vi một bài viết xuất sắc. Mình cũng muốn giới thiệu về một thương hiệu dịch thuật uy tín: Công ty CP dịch thuật miền trung - MIDtrans địa chỉ 02 Hoàng Diệu, TP Đồng Hới, tỉnh Quảng Bìnhcó Giấy phép kinh doanh số 3101023866 cấp ngày 9/12/2016 là đơn vị chuyên cung cấp dịch vụ dịch thuật, phiên dịch dành các cá nhân. Hệ thống thương hiệu và các Công ty dịch thuật con trực thuộc: dịch thuật tp hcm địa chỉ 47 Điện Biên Phủ, Phường Đakao, Quận 1 TP HCM, dịch thuật quy nhơn, bình định : địa chỉ 100 , Lê Lợi, quy nhơn, bình định là nhà cung ứng dịch vụ dịch thuật uy tín hàng đầu tại bình định translation service in Vietnam : dịch vụ dịch thuật cho người nước ngoài có nhu cầu, giao diện tiếng Anh dễ sử dụng; dịch thuật công chứng quận 5 (năm) : nhà cung ứng dịch vụ dịch vụ dịch thuật phiên dịch hàng đầu tại Quận 4, TP HCM; dịch thuật Đà Nẵng : Địa chỉ 54 Đinh Tiên Hoàng, Quận Hải Châu, TP Đà Nẵng chuyên cung cấp dịch vụ dịch thuật công chứng, dịch thuật chuyên ngành tại Đà Nẵng. Chúng tôi chuyên cung cấp các dịch vụ biên dịch và phiên dịch, dịch thuật công chứng chất lượng cao hơn 50 ngôn ngữ khác nhau như tiếng Anh, Nhật, Hàn, Trung, Pháp, Đức, Nga, Tây Ban Nha, Bồ Đào Nha, Ý, Ba Lan, Phần Lan, Thái Lan, Hà Lan, Rumani, Lào, Campuchia, Philippin, Indonesia, La Tinh, Thụy Điển, Malaysia, Thổ Nhĩ Kỳ..vv... Dịch thuật MIDtrans tự hào với đội ngũ lãnh đạo với niềm đam mê, khát khao vươn tầm cao trong lĩnh vực dịch thuật, đội ngũ nhân sự cống hiến và luôn sẵn sàng cháy hết mình. Chúng tôi phục vụ từ sự tậm tâm và cố gắng từ trái tim những người dịch giả.Tự hào là công ty cung cấp dịch thuật chuyên ngành hàng đầu với các đối tác lớn tại Việt nam trong các chuyên ngành hẹp như: y dược (bao gồm bệnh lý), xây dựng (kiến trúc), hóa chất, thủy nhiệt điện, ngân hàng, tài chính, kế toán. Các dự án đã triển khai của Công ty dịch thuật chuyên nghiệp MIDtrans đều được Khách hàng đánh giá cao và đạt được sự tín nhiệm về chất lượng biên phiên dịch đặc biệt đối với dịch hồ sơ thầu , dịch thuật tài liệu tài chính ngân hàng, dịch thuật tài liệu y khoa đa ngữ chuyên sâu. Đó là kết quả của một hệ thống quản lý chất lượng dịch thuật chuyên nghiệp, những tâm huyết và kinh nghiệm biên phiên dịch nhiều năm của đội ngũ dịch giả của chúng tôi. Hotline: 0947688883. email: info@dichthuatmientrung.com.vn . Các bạn ghé thăm site ủng hộ nhé. Cám ơn nhiều

    ReplyDelete
  83. really great post
    http://mcafeeactivationkey.com

    ReplyDelete
  84. The information isn't only wide of names and email passes on yet close estimation information related to sex, arranging, date of birth, inclinations, interests and some other information requested everywhere.
    http://officecomcomoffice.com/
    office.com/setup

    ReplyDelete
  85. From the list of to hand Office products and subscriptions, choose the one you nonexistence to download and click harshly the Install Office button adjoining it. After that, click harshly Install. Now, the Office setup file will coming on to download. Install Microsoft Office.com/Setup. To install MS Office, make certain that you have a fine internet connection.
    http://office-comoffiice.com

    ReplyDelete
  86. I think this is a useful post and it is exceptionally valuable and learned. along these lines, I might want to thank you for the endeavors you have made recorded as a hard copy this article. In the event that you are searching for antivirus security for your PC and some other advanced gadgets than. Visit@:
    office.com/setup

    ReplyDelete
  87. office.com/setup - For Downloading, Installing and activating the Office product key, visit www.office.com/setup and Get Started by now Office setup.

    http://officecomcomoffice.com/

    ReplyDelete
  88. Are you want to enjoy with call girls? So Hyderabad Escorts Service is the best platform for you. Because Hyderabad Call girls are looking very hot and very pretty. There are many types of Escorts girls available at different different price. So don’t waste your time contact on Hyderabad Escorts Service .
    Hyderabad Esorts Service
    Hyderabad Escorts
    Hyderabad Call Girls
    Call Girls In Hyderabad

    ReplyDelete
  89. The longer term answer to this is to have something fully open source that can be run anywhere on any server to avoid these issues. Jive Search is basically an open source version of DDG.

    ReplyDelete
  90. To install this software mcafee.com/activate product with a key the way you are using. you should have McAfee license key code, which is written at the end of McAfee Retail Card. All product of McAfee might have similar features but what makes them change from one another into unique license key code.

    norton.com/setup
    mcafee.com/activate
    norton.com/setup
    mcafee.com/activate
    daily tech updates

    ReplyDelete
  91. DuckDuckGo's results are a compilation of "over 400" sources,[14] including Yahoo! Search BOSS; Wolfram Alpha; Bing; its own Web crawler (the DuckDuckBot); and others.It also uses data from crowdsourced sites, including Wikipedia, to populate "Zero-click Info" boxes – grey boxes above the results that display topic summaries and related topics...thanks for sharing this information...regards !!!!


    DuckDuckGo positions itself as a search engine that puts privacy first and as such it does not store IP addresses, does not log user information, and uses cookies only when required. Gabriel Weinberg, creator of DuckDuckGo, states: "By default, DuckDuckGo does not collect or share personal information. That is our privacy policy in a nutshell." However, they do maintain logs of all search terms used.[16]

    Weinberg has refined the quality of his search engine results by deleting search results for companies he believes are content mills, such as Demand Media's eHow, which publishes 4000 articles per day produced by paid freelance writers, which Weinberg says is "low-quality content designed specifically to rank highly in Google's search index". DuckDuckGo also filters pages with substantial advertising.
    Get Support if you face problem to activate office.com/setup or mcafee.com/activate install Microsoft Office product. http://msofficesetup.org..or call on our toll free no-18006092780

    ReplyDelete
  92. its really good information on privacy policy "DuckDuck Go"..thanks forsharing this blog1!!regards..
    Its seems to be very informative blog!!! thanks for sharing this blog!! regards.

    Get world class best optimal technical support for all Ms Office issues .office.com/setup

    ReplyDelete
  93. iCloud is a champion among the most outstanding devices for taking photos due to its extraordinary picture quality and ease of use. Not at all like the standard propelled cameras of the past, the windows pc is reliably in your pocket and does not require outstanding data and capacities to use. Likewise, windows pc photos can expeditiously be seen on your Mac or another iOS contraption. This is possible, by virtue of iCloud Photo Sharing. In this article, we will review iCloud photo accumulating in detail and answer these as regularly as conceivable made request: The best strategy to delete photos from iCloud Photos works impeccably with the Photos application to keep your photos and accounts securely stored iCloud and front line on your windows pc, iPad, iPod contact, Mac, Apple TV, and iCloud login email.

    ReplyDelete
  94. Great blog. Nice opportunity. This is Great post, i will Read it i hope you will Write new post in some days I will wait your post. Thank you for sharing this blog


    Kaspersky Total Security is one of the most widely used security software. You can get Kaspersky Total Security at the best prices and find products that suit your needs. We can also help you with all your support and troubleshooting requirements for Kaspersky Activation Code . We have a team of professionals who are skilled in handling all aspects of Kaspersky Total Security and this is a major benefit for you. Contact us for Kaspersky support!
    We also helps in installing Brother printer drivers .

    ReplyDelete
  95. All together not to deceive or misleading, you have to uncover every particular practice or approach with respect to the accumulation, use and dispersal or revelation of all close to home data. diadiktiokaiasfalia

    ReplyDelete
  96. So you have...
    - avoided so called 'smart' devices
    - done your best to swerve social media intrusion.
    - run a more trustworthy operating system, browser and a 'privacy respecting' search engine.

    But the gdata protocol is everywhere
    - tagging everything with your unique identifier
    - capturing all your small data crumbs
    - collating it into more meaningful big data
    - and selling it on to third parties.

    we don't own our data
    - quite the opposite
    - our data is used to influence, control and own us.

    Resistance is futile.

    ReplyDelete
  97. Roblox Phone Number | Roblox Support
    solitaire Game Not Working
    Error Sage 50 cannot be started
    Renew pogo subscription
    Stack’em HD freezing half way
    How to Fix Pogo Login Issue ?
    How to Fix Juno Webmail Login Problems?
    Garmin Gps Devices Support
    Express Dictate Digital Dictation Software
    Why medical practices are turning to Dragon medical voice recognition
    Dragon Dictation Support
    HP Printer
    How do I purchase PLUS after I’ve already filed my 2019 return?
    Arlo Support
    How to Contact Pogo Customer Support
    Fix problems sending AOL Mail
    McAfee.com/activate
    Canon support for basic issues
    Zone Alarm Contact
    Games not working? Try these troubleshooting steps
    Poppit! Bingo game not working or loading
    Trend Micro Security software
    DICTATION PROBLEMS IN NATURALLYSPEAKING
    Dragon Dictation
    Trend Micro not opening
    How To Fix Pogo Game Won’t Load or not stacking
    Solitaire Game Support
    Outlook Support
    Roadrunner Email Support
    Problem With Panda Antivirus
    Quicken Error CC-501 Occurs
    Quick Fix to AOL Gold Icon Not Responding Problem
    MCAFEE ANTIVIRUS BASIC ISSUES AND ITS SOLUTION
    How to Fix Common Webroot Antivirus Problems ?
    Avast 2019 on Windows 10 Not Working
    Webroot Key-code not working?
    Norton Setup
    How to Fix Overflow Error in QuickBooks Desktop: Step-by-Step Guide
    Outlook is not opening
    How to remove Porn Sites pop-up

    ReplyDelete
  98. http://sexservicesinmumbaiescorts.strikingly.com/
    http://www.escortsgirlinmumbai.com/
    http://www.heaveninbangalore.com/
    http://puneindependentescorts.com/
    http://koregaonparkescorts.escortbook.com/
    https://escortsgirlinmumbai-13.webself.net/
    https://mumbaiairportescorts.wordpress.com/
    http://escortsgirlinmumbai.website2.me/

    ReplyDelete


  99. Hi My Name is Alisha Petel at I read your all Blog. Your blog is very informative. When you hook up with our high-profile Model you are bound to get maximum erotic pleasure from them. (07045557873)As all of these Model come from a higher class and are well-educated, sensuous and seductive, they take the sensual pleasure of clients to unimagined heights. Dating this class of escorts will not only arouse your passion and rejuvenate your senses but will let you feel exhilarated and ecstasy.http://puneindependentescorts.com/ You and your partner will be enjoying the same feelings and emotions. Remember that lovemaking is not only confined to a single partner. Instead, it is confined to both of you. There is nothing to be doubtful about the quality of these escorts since they are very attractive and keep your senses gratified when you hire any of these escorts and spend some quality time with her. For more details please visit here.Thank You for Sharing Blog.

    Pune escorts

    Bangalore Escorts

    Mumbai Escorts

    While having a company with an Alisha you should also adopt a good attitude. You too should be generous in your attitude. Consider her as your true friend not merely as sexual partner. Share your innermost feelings with her and do not waste much time in having a gossip with her.
    Sex Services In Mumbai

    Koregaon Park Escorts

    Escorts Girls In Mumbai

    For more details please visit here.Thank You for Sharing Blog.

    ReplyDelete
  100. Thank You admin for this informative article. It was very helpful, for any issue related to quickbook error code 6170 you can visit our website.
    how to resolve quickbook error code 6170

    ReplyDelete
  101. Hyderabad escorts service is one of the best escorts in India.If you want to enjoy your days with call girls contact Hyderabad Escorts Service or call girls in Hyderabad .
    Hyderabad Esorts Service
    Hyderabad Esorts
    Hyderabad Call Girls

    ReplyDelete
  102. Office.com/setup suite incorporates dependably utilized endeavors and associations. The most utilized endeavors of Microsoft Office setup are Word, a word managing program, Excel, a spreadsheet program, PowerPoint, an introduction creator, and Access, a database application.
    http://officecom-officeoffice.comOffice.com/setup suite incorporates dependably utilized endeavors and associations. The most utilized endeavors of Microsoft Office setup are Word, a word managing program, Excel, a spreadsheet program, PowerPoint, an introduction creator, and Access, a database application.
    http://officecom-officeoffice.com

    ReplyDelete
  103. Thanks for all the tips mentioned in this article! it’s always good to read things you have looking for antivirus security for your PC and any other digital devices than. Visit@: my sites :- www.office.com/setup | office.com/setup | McAfee.com/ActivateDell

    ReplyDelete
  104. This is a very great post and the way you are doing so is so good.

    Norton.com/setup

    ReplyDelete
  105. Great, thanks for sharing this article post.Really thank you!

    Hp printer assistant

    ReplyDelete
  106. Hp printer support number is Software window and issue including printer,design,setup, paper sticking ,wifi association hp printer support best quality text direct from their smartphone, PC, laptops, or any other gadgets. The support executives offer 24 hours of services (1-888-722-1666)to deliver reliable resolutions whenever needed.

    ReplyDelete
  107. Hp printer support number is Software window and issue including printer,design,setup, paper sticking ,wifi association hp printer support best quality text direct from their smartphone, PC, laptops, or any other gadgets. The support executives offer 24 hours of services (1-888-722-1666)to deliver reliable resolutions whenever needed.

    ReplyDelete
  108. etherrag.blogspot.com/2013/07/duck-duck-go-illusion-of-privacy.html

    ReplyDelete
  109. Outlook Support Number +1800-565-7782 COM gets you concentrated assistance for Outlook Number +1800-565-7782 issues and issues of any measurements through Trained and Certified Outlook Technicians

    ReplyDelete
  110. Outlook Support Number +1800-565-7782 COM gets you concentrated assistance for Outlook Number +1800-565-7782 issues and issues of any measurements through Trained and Certified Outlook Technicians.

    ReplyDelete
  111. So guys, are you ready to get a dazzling ride of sexual intercourse with amazing and peculiar beauties in Bangalore? Just go nowhere , you can get your sweet angel here.

    Bangalore Escorts
    Independent Escorts in Bangalore
    Escorts Service in Bangalore
    Escorts in Bangalore
    Call Girls in Bangalore

    ReplyDelete
  112. Thanks for the informative post that you have shared here.
    Really great article, Glad to read the article. It is very informative for us. Thanks for posting.


    norton.com/setup

    norton.com/setup

    ReplyDelete
  113. This comment has been removed by the author.

    ReplyDelete
  114. http://www.webestools.com/profile-108106.html

    https://soundcloud.com/james-smith-657712524

    https://slashdot.org/~jamessmith121291

    https://www.slideshare.net/brownsmith7

    https://en.gravatar.com/jaxsonharry1

    ReplyDelete